Change from NTLM authentication to kerberos authentication
Hello, I am informed to remove few computers from NTLM authentication and configure Kerberos authentication. Computers are part of a security group to use the NTLM authentication. If the group is removed from the computers, then will it use Kerberos…
Remover integração de usuário do AD local e Azure AD Conect
Olá Utilizo o Azure AD Connect vinculado ao meu AD local, os usuários são integrados normalmente do meu AD para a Microsoft, são criados os usuários corretamente Estou planejando retirar o AD e utilizar tudo somente dentro da Microsoft agora. Acontece…
how we can add aws ec2 instnace to Azure entra
Customer is having two environment one is on azure and another one aws. on Azure there is entra ID. on AWS customer has created the two ec2 instances. which he wanted to be authenticated using the Azure Entra ID . could you please help us what all things…
Add Windows Server 2025 as member server on AD FFL and DFL 2016 and install Print Server Role
Hi Everyone, I’m currently managing an Active Directory environment with a Domain Functional Level (DFL) and Forest Functional Level (FFL) of 2016. I’m considering adding a Windows Server 2025 as a member server to this domain and configuring it as a…
Unable to Install New Entra Connect Server Using Exported Settings
We are facing an error when trying to install a new Entra Connect server using settings exported from another server. An error occurred while importing synchronization settings. Details: Could not find a part of the path C:\program File\Microsoft Azure…
M365 to on-premise sync does not write initial M365 password to on-premise
Hi This is our work flow. We create an account in Microsoft 365 and assign a A1 or A3 license. We create an account on-premise in Active Directory. We sync this using Microsoft Entra AD Connect (version 2.4.27.0) Sync works (symbol behind account…
Weird on-prem authentication issues on AzureAD-Joined Laptops
I’m experiencing an intermittent issue in our hybrid network setup and would love your insights. We have laptops that are AzureAD-joined but not domain-joined, connecting to an on-premises server environment through Zscaler. We also use Windows Hello for…
SuccessFactors to AD User Provisioning : Provisioning Error
How to fix below user provisioning error error code - null error message - Update for unconnected entry
My Default Directory has disappeared from my account
Hi, I have a directory that I use to create app registrations. Now I cannot find the directory and the emails from that directory do not seem to be working. Can someone please help. Best Regards, Kiran
Active Directory Assessment DC2 froze up while working on it, After no luck , I can access the assessment again as it shows access denied and automatically have to wait 72hrs . Please kindly assist, Lab number is 46923136
DC2 froze up while working on it, After no luck , I can access the assessment again as it shows access denied and autaomatically have to wait 72hrs . Please kindly assist, Lab number is 46923136
Issues logging into Admin console
Our corpoate domain is synced with Microsoft 365 using ADFS. I am unable to login to Microsoft 365 using my corporate credentials. When I try logging in, I automatically get authenticated using domain.onmicrosoft.com credential and not domain.com…
How to lower ActiveDirectory functional levels
Hello! I run 2 AD servers with Windows Server 2016 ,and have a forest composed of these 2 servers. The domain and forest functional levels are 2012 now, and I want to rise them to 2016. Just in case,I made backups of ver.2012 and then increased the…
Moving a Domain Controller to the Correct Site
A domain controller was mistakenly promoted to the wrong Active Directory site. How can we move the domain controller to the correct site while ensuring minimal impact on the environment?
Entra Domain Services considerations
Hi All! I am considering using Entra domain services (PaaS) as an option for extending (not replacing) our AD infrastructure into the cloud (as opposed to sticking a VM in Azure with AD running on it). It looks like a good option since I like the idea of…
Conflict with SSPR and Password Writeback for AADDS Users
I'm having this issue with my tenant where we have on-prem users and cloud users, and AADDS users. Some of the current cloud users used to be on-prem users and were converted. DirSyncEnabled is set to FALSE and they have their Immutable IDs set to $null.…
SuccessFactors to Active Directory User Provisioning - can we change Odata filter query?
We have a setup using SuccessFactors to Active Directory User Provisioning enterprise app to synchronize users from SAP Employment Central (EC) to Active Directory. We have configured this rather straight forward from setup and guides from Microsoft…
Entra ID Connect Sync to two tenants
Hello, i have one local Active Directory Domain and two tenants. There is already one Entra ID Sync Connection established to Tenant 1. I want to sync my local AD Objects to both Tenants like in this topolgy picture i have attached. What do I need to be…
How to achieve cross app sso with ADFS not entra ID
Based on this article https://learn.microsoft.com/en-us/entra/identity-platform/msal-android-single-sign-on How to achieve Cross APP SSO with ADFS Account? I have my environment running full on premise with ADFS 2019, Exchange server 2019 CU 14. I've…
Active Directory/DNS: Default Root Hints Reappear (in PowerShell only) After Removal on Some DCs
Background: We have an Active Directory environment where all external DNS queries are strictly controlled. The configuration is as follows: Domain Controllers (DCs) forward DNS queries to a central internal DNS server, which then forwards traffic to…
Using App credential can't create service principal using Azure Java SDK
Hi Team, I am having problem using azure java sdk to create service principal, val resourceManager: AzureResourceManager = { AzureResourceManager.authenticate(credential, profile).withDefaultSubscription() } val password =…